Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-44721

Shell KMS AWS support cannot decrypt responses

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Blocker - P1 Blocker - P1
    • 4.2.2, 4.3.2
    • Affects Version/s: 4.2.0, 4.2.1
    • Component/s: None
    • None
    • Fully Compatible
    • ALL
    • v4.2
    • Security 2019-12-02
    • 46

      On November 13, 2019, AWS added a new field EncryptionResponse to the decrypt message response from KMS. This is not documented here as of the filing of this ticket. 

      EncryptionAlgorithm: "SYMMETRIC_DEFAULT",
      

      As a result, 4.2.0, and 4.2.1 shell cannot work with AWS KMS

            Assignee:
            mark.benvenuto@mongodb.com Mark Benvenuto
            Reporter:
            mark.benvenuto@mongodb.com Mark Benvenuto
            Votes:
            0 Vote for this issue
            Watchers:
            9 Start watching this issue

              Created:
              Updated:
              Resolved: